instantly-security-basics

Featured

Apply Instantly.ai security best practices for API keys, scopes, and access control. Use when securing API keys, implementing least-privilege access, or auditing Instantly workspace permissions. Trigger with phrases like "instantly security", "instantly api key safety", "instantly least privilege", "secure instantly", "instantly access control".

AI & Automation 2,266 stars 315 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Instantly Security Basics ## Overview Secure your Instantly.ai integration with scoped API keys, least-privilege access, secret management, webhook validation, and audit logging. Instantly API v2 uses Bearer token auth with granular scope-based permissions. ## Prerequisites - Instantly account with API access - Understanding of environment variable management - Access to Instantly dashboard Settings > Integrations ## Instructions ### Step 1: Least-Privilege API Key Scopes Create separate API keys for different use cases with minimal required scopes. ```typescript // Key scopes follow the pattern: resource:action // resource = campaigns, accounts, leads, etc. // action = read, update, all // Read-only analytics dashboard // Scopes needed: campaigns:read, accounts:read const ANALYTICS_KEY_SCOPES = ["campaigns:read", "accounts:read"]; // Campaign automation bot // Scopes needed: campaigns:all, leads:all const AUTOMATION_KEY_SCOPES = ["campaigns:all", "leads:all"]; // Webhook-only integration // Scopes needed: leads:read (to look up lead data on events) const WEBHOOK_KEY_SCOPES = ["leads:read"]; // AVOID: all:all gives unrestricted access — dev/test only ``` | Use Case | Recommended Scopes | Risk Level | |----------|-------------------|------------| | Analytics dashboard | `campaigns:read`, `accounts:read` | Low | | Lead import tool | `leads:update` | Medium | | Campaign launcher | `campaigns:all`, `leads:all`, `accounts:read` | High | | Full automation | `all:all` | ...

Details

Author
jeremylongshore
Repository
jeremylongshore/claude-code-plugins-plus-skills
Created
7 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Anthropic · AI

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

instantly-install-auth

Set up Instantly.ai API v2 authentication and project configuration. Use when creating a new Instantly integration, generating API keys, or configuring environment variables for the Instantly outreach platform. Trigger with phrases like "install instantly", "setup instantly", "instantly auth", "configure instantly API key", "instantly credentials".

2,266 Updated today
jeremylongshore
AI & Automation Featured

instantly-enterprise-rbac

Configure Instantly.ai workspace access control, team management, and API key governance. Use when managing workspace members, setting up team permissions, or implementing API key governance for multi-user Instantly workspaces. Trigger with phrases like "instantly team", "instantly permissions", "instantly workspace members", "instantly access control", "instantly rbac".

2,266 Updated today
jeremylongshore
AI & Automation Featured

apollo-security-basics

Apply Apollo.io API security best practices. Use when securing Apollo integrations, managing API keys, or implementing secure data handling. Trigger with phrases like "apollo security", "secure apollo api", "apollo api key security", "apollo data protection".

2,266 Updated today
jeremylongshore
AI & Automation Featured

attio-security-basics

Secure Attio API integrations -- token scoping, secret management, scope auditing, webhook signature verification, and rotation procedures. Trigger: "attio security", "attio secrets", "secure attio", "attio API key security", "attio scopes", "attio token rotation".

2,266 Updated today
jeremylongshore
AI & Automation Solid

webflow-security-basics

Apply Webflow API security best practices — token management, scope least privilege, OAuth 2.0 secret rotation, webhook signature verification, and audit logging. Use when securing API tokens, implementing least privilege access, or auditing Webflow security configuration. Trigger with phrases like "webflow security", "webflow secrets", "secure webflow", "webflow API key security", "webflow token rotation".

2,266 Updated today
jeremylongshore